[summary of the invention]
Technical matters to be solved by this invention is to provide a kind of BIOS by the existing industrial computer of modification, and the Fingerprint Encryption Safe Industry Control System that adopts fingerprint to encrypt.
For realizing purpose of the present invention, the technical solution adopted in the present invention is: a kind of Fingerprint Encryption Safe Industry Control System is provided, it comprises industrial computer, this system also comprises the finger print acquisition module that is connected with this industrial computer, and the fingerprint that this industrial control system received is to send instruction by this industrial computer to gather for this finger print acquisition module; This industrial computer also comprises the BIOS with fingerprint processing capacity, this BIOS with fingerprint processing capacity is the BIOS that integrates standard BIOS, fingerprint identifying module, fingerprint database and main management module, this fingerprint identifying module is that eigenwert is handled, extracted to the fingerprint image that this finger print acquisition module collects, and be saved in this fingerprint database, or judge the fingerprint recording whether coupling is arranged in this fingerprint database; This main management module be included as enter CMOS be provided with provide safeguard protection advance CMOS be provided with authentication module, for enter system provide safeguard protection enter the system verification module and authority is provided with module.
This BIOS with fingerprint processing capacity comprises that also press-key lock opens module, and the lock that this press-key lock opens module opens process and may further comprise the steps at least:
A. the fingerprint input causes interruption, enters press-key lock and opens service routine;
B. call the fingerprint identifying module;
C. judge whether to press-key lock opens fingerprint, if, then enter steps d, if not, then enter step g;
D. judge whether to be keyboard state;
E. if need to open, then open keyboard interrupt, the button service is provided, enter step g then;
F. if need locking key, then shield keyboard interrupts, and the button service is not provided;
G. interrupt returning.
The industry control cabinet of this system also is provided with electric lock, and it is connected with this industrial computer, and this BIOS with fingerprint processing capacity also comprises the electric lock control module.
The invention has the beneficial effects as follows, because Fingerprint Encryption Safe Industry Control System of the present invention comprises the finger print acquisition module that is connected with industrial computer, this industrial computer also comprises the BIOS with fingerprint processing capacity, therefore a general encrypting fingerprint platform not only is provided, solve Authority Verifications such as File Open, and industrial computer is when powering up starting, automatically call in the BIOS that has designed, this BIOS requires the user need pass through fingerprint authentication, no longer need the input password of stroking, therefore validated user can enter system fast, and enters CMOS and be provided with system and all will carry out the finger print safety checking, has therefore improved security;
Because the BIOS with fingerprint processing capacity of the Fingerprint Encryption Safe Industry Control System of this system comprises that press-key lock opens module, therefore validated user is when industrial computer normally moves, if need leave temporarily, continue operation after returning again, then can adopt press-key lock to open mode, thereby need not shut down, very convenient;
Because the industry control cabinet of this system also is provided with electric lock, this BIOS with fingerprint processing capacity also comprises the electric lock control module, therefore can prevent that the industry control cabinet from illegally being opened.
[embodiment]
See also Fig. 1, Fingerprint Encryption Safe Industry Control System of the present invention comprises industrial computer 1, the finger print acquisition module 2 that is connected with industrial computer 1 and electric lock 3, and industrial computer 1 also comprises the BIOS (Basic Input or Output System (BIOS)) 4 with fingerprint processing capacity.Industrial computer 1 adopts the carrier of flash memory as BIOS, general BIOS comprises SYSTEMBIOS (128K), expanded BIOS and BOOT BLOCK three parts, newly-increased module is added in the expanded BIOS part usually, the present invention is integrated in fingerprint identifying module 42, fingerprint database 43 and main management module 44 on the expanded BIOS exactly, and the BIOS 4 with fingerprint processing capacity of the present invention is the BIOS that integrate standard BIOS 41, fingerprint identifying module 42, fingerprint database 43 and main management module 44.Owing to the BIOS 4 with fingerprint processing capacity has been arranged, therefore can before os starting, move this BIOS 4 earlier and carry out fingerprint authentication.Main management module 44 comprise enter CMOS authentication module 441 be set, enter system verification module 442, press-key lock opens module 443 and electric lock control module 444, above four module has been realized four functions that need fingerprint authentication of native system, also have authority that module 445 is set, itself and user use in close relations, friendly interface, easy and simple to handle.
See also Fig. 2, fingerprint collecting of the present invention is to send instruction by industrial computer 1 to gather or gathered by finger print acquisition module 2 initiation interrupt notification industrial computers 1 for finger print acquisition module 2, what the present invention adopted is the EFD-0301AC fingerprint capturer, it adopts interrupt mode work, will cause hard interruption as long as there is finger to press.Finger print acquisition module 2 collects the fingerprint image that one 62500 byte is represented with gray scale at every turn.The fingerprint sensor 21 of Fingerprint Encryption Safe Industry Control System of the present invention adopts the EFS-C0301 capacitance type sensor of customization, and its volume is small and exquisite, and power consumption is few, and is very firm, and electrostatic prevention meets safety standard FCC and UL.The smooth surface of fingerprint sensor 21, after the finger contact, it will measure the capacitance of each pixel in surperficial 250 * 250 matrixes down, other parts on the finger on ridge of fingerprint (near) and paddy (far away) and the surface of contact, can corresponding relative position, each pixel capacitance value is by 8 A/D converters 22 (every is adopted a byte, 256 grades of expressions), thereby make EFS-C0301 fingerprint sensor 21 just can construct the image that a width of cloth has 62500 bytes, and then send to industrial computer 1 by high-speed communication interface 23 according to the capacitance of each point.
Seeing also Fig. 3, is the functional block diagram of fingerprint discrimination module 42.The fingerprint image that finger print acquisition module 2 collects just can handle, extract eigenwert by fingerprint identifying module 42 to this fingerprint image, be saved in fingerprint database 43; Or whether comparison has the fingerprint recording of coupling in fingerprint database 43.Fingerprint identifying module 42 also comprises fingerprint image preprocessing module 421, eigenwert extraction module 422, finger print data database management module 423 and fingerprint comparison module 424, eigenwert extraction module 422 also comprises population characteristic value extraction module 4221 and local eigenwert extraction module 4222, being described as follows of each several part:
A. the fingerprint image preprocessing module 421: it comprises gray-scale filtering submodule, binaryzation submodule, two-value denoising submodule and refinement submodule, its objective is the noise of removing in the fingerprint image, be translated into width of cloth point and line chart clearly, be convenient to extract correct fingerprint characteristic.
B. the population characteristic value extraction module 4221: it comprises that ring-like lines extracts submodule, submodule, screw type lines extraction submodule etc. are extracted in the arch road, extracting those exactly directly just can observed feature with human eye, grain patterns such as for example ring-like, bow type, screw type.Can in fingerprint database 43, search the fingerprint whether coupling is arranged fast by total eigenwert,, unnecessaryly do local eigenwert again and extracted if just can not judge rapidly, otherwise, then carry out the local feature value and extract,, thereby accelerated the speed of fingerprint identifying greatly with further comparison.
C. local feature value extraction module 4222: it comprises that node recognin module, node direction judge that submodule, flexometer operator module, position determine submodule etc.; take the fingerprint exactly and go up the characteristic of node; comprise node judgement, direction, curvature, position etc.; two pieces of fingerprints have identical general characteristic through regular meeting; but their local feature node but can not be identical.The local feature value is extracted and is used for accurately confirming fingerprint.
D. the finger print data database management module 423: be used for the foundation of fingerprint database 43 and search, it comprises fingerprint recording module for reading and writing and flash reading and writing module etc.
E. the fingerprint comparison module 424: be used for the total eigenwert of fingerprint, local feature value are compared, adjudicate according to the condition that presets.
Seeing also Fig. 4, is to enter the process flow diagram that CMOS is provided with authentication module.This module provides and enters CMOS safeguard protection is set, and it may further comprise the steps:
A. open industrial computer 1;
B. judge whether key,, then enter the system verification module,, then enter step c if press the DEL key if not according to the DEL key by DEL;
C. judge whether that into CMOS wants Authority Verification, if not, then enter CMOS the interface is set, if then enter steps d;
D. prompting " PLEASE PUT IN YOUR FIGER MARK ORPASSWORD TO SET CMOS ";
E. judge it is keyboard input or fingerprint input,, enter step g then if the fingerprint identifying module is then called in the fingerprint input;
If BIOS cryptographic check module is then called in f. keyboard input, enter step g then;
G. judge whether password conforms to,, then enter CMOS the interface is set if conform to, if do not conform to, then prompting " FIGER MARK OR PASSWORD ERROR ";
H. judged whether three operations, if, then enter the system verification module, if not, then return steps d.
Seeing also Fig. 5, is the process flow diagram that enters the system verification module.This module provides and enters the security of system protection, and it may further comprise the steps:
A. preset initial parameter;
B. judge whether that entering system wants Authority Verification, if not, then enter system bootstrap, if then enter step c;
C. prompting " PLEASE PUT IN YOUR FIGER MARK ORPASSWORD TO START SYSTEM ";
D. judge it is keyboard input or fingerprint input,, enter step f then if the fingerprint identifying module is then called in the fingerprint input;
If BIOS cryptographic check module is then called in e. keyboard input, enter step f then;
F. judge whether password conforms to,, then enter system bootstrap if conform to, if do not conform to, then prompting " FIGER MARK OR PASSWORD ERROR ";
G. judged whether three operations, if, then reset, if not, then return step c.
Seeing also Fig. 6, is the process flow diagram that press-key lock opens module.It may further comprise the steps:
A. the fingerprint input causes interruption, enters press-key lock and opens service routine;
B. call the fingerprint identifying module;
C. judge whether to press-key lock opens fingerprint, if, then enter steps d, if not, then enter step g;
D. judge whether to be keyboard state;
E. if need to open, then open keyboard interrupt, the button service is provided, enter step g then;
F. if need locking key, then shield keyboard interrupts, and the button service is not provided;
G. interrupt returning.
Seeing also Fig. 7, is the process flow diagram of electric lock control module.Provide a high level unlocking signal of 30 seconds from the input and output numeral I/O able to programme of industrial computer.To electric lock performance requirement :+12V power supply, when keeping high, start signal keeps opening state, do not need during lock to power up.The electric lock control module may further comprise the steps:
A. power up to industrial computer;
B. enter CMOS the interface is set;
C. select " OPEN BOX " item;
D. prompting " PUT IN YOUR FIGER MARK OR PASSWORD TOOPEN BOX ";
E. judge whether if not, then to withdraw from setting by checking;
F. if by checking, then control pin provided high level 30 seconds;
G. prompting " OPENING BOX SUCCESS ", can open cabinet this moment, notices that outage back electric lock will close again;
H. automatically cutting off power source.
It is as follows that authority is provided with the major function that module comprises:
A., four fingerprint authentications of " main management module " optionally are set.
B. control is gathered, is preserved sample fingerprint, is used for the comparison checking.
C. establish one of main management person, new machine must be preserved one piece of fingerprint characteristic of main management person earlier when first the mandate, is used for other and authorizes usefulness, and other is authorized all will be through main management person's approval, the input fingerprint authentication by after just can carry out.Main management person can make amendment to other authority, but after " many people simultaneously open function " be provided with, can not be revised by main management person, have only many people here after!
D. provide a cover password authentification simultaneously corresponding to fingerprint authentication, realize functions such as " entering the CMOS password authentification ", " entering the system password checking ", " electric lock is opened moving password authentification ", adopt in the unusual time, when going on business as short-term, the provisional management responsibility of through committing others; When fingerprint was impaired, available pin mode entered CMOS and is provided with, and authorized again.But, after the loss of data,, just can only just can have corresponding authority by fingerprint authentication as having enabled fingerprint authentication in advance in the CMOS outage!
E. take place for avoiding unexpected, same authority can provide 1-3 piece of sample fingerprint to be used for verifying.Avoid pointing impaired or someone uses can not exercise verifying authorization the time.
When Fingerprint Encryption Safe Industry Control System of the present invention is powering up when starting, automatically call in the BIOS that has designed, this BIOS requires the user need pass through fingerprint authentication, no longer need the input password of stroking, validated user just can enter system within 1 second, otherwise prompting is illegal, no longer down operation repeats above-mentioned proof procedure after restarting.This verification system also provides senior mandate startup functions such as many people's while open functions (referring to 2-5 people): Fingerprint Encryption Safe Industry Control System is when powering up starting, call in the BIOS operation, require the several users of being authorized to simultaneously through the system that is allowed for access behind the fingerprint authentication, this function can be used for highly secret, very great place.
When validated user is worked at Fingerprint Encryption Safe Industry Control System, as long as one press gently on finger print acquisition module 2 with finger, can pass through fingerprint authentication, button is locked, can leave relievedly; After returning, one press gently with same finger equally, just can open button, drop into operation rapidly.(noting: be used to lock the fingerprint that opens button and can not be used for other checking)
Be provided with in order to prevent the industry control cabinet to be difficult for illegally being opened one built-in electric lock 3, when needs are opened cabinet, can allow industrial computer 1 power up earlier, enter CMOS routinely the hurdle is set, select " OPEN BOX " item, system prompt needs fingerprint authentication (comprising that " many people are open function simultaneously " need all be authorized to personnel's fingerprint authentication), after fingerprint authentication is legal, electric lock 3 energisings are in opening, after 30 seconds, industrial computer 1 closes tester in power-down state automatically, and therefore electric lock 3 needed cabinet is opened in these 30 seconds again with power-failure close.When cabinet was closed, electric lock 3 was buckled simultaneously, locking cabinet (need not switch on).